2 matches found
CVE-2023-37861
The CVE-2023-37861 issue affects PHOENIX CONTACT WP 6xxx series web panels prior to version 4.0.10. Root cause is an OS command injection in the web interface during certificate uploads, enabling an authenticated remote attacker to execute code with root privileges via a crafted HTTP POST. Affect...
CVE-2023-37861 PHOENIX CONTACT: OS Command Injection in WP 6xxx Web panels
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated remote attacker can execute code with root permissions with a specially crafted HTTP POST when uploading a certificate to the device...